Re: stick a laptop to a LAN

[Karsten Iwen <newsletter () savia de>]

Hi, Steven,
> how could I be sure that the laptop will ONLY be able to connect to
> our LAN and not any other.
> Thanks for any help or hints.
>   

well, there are many possibilities to achieve that. Just some thoughts:

1) my personal favorite (perhaps I'm a little bit prejudiced):
Install a HIPS like the Cisco Security Agent. There you can specify 
"Security-Conditions". For example: If the CSA-Management-Center is 
reachable and the PC is in your Network, then apply "normal" security. 
If the CSA-Management-Center is *not* reachable and the PC is in a 
different network, then apply a Network lockdown.

2) (I assume you are using Windows)
Configure a hardware-profile with disabled NIC and use this profile when 
you are abroad.

3) If someone "untrusted" is using the laptop you could plug a RJ45-Lock 
into the Ethernet-connector of the PC.


regards, Karsten Iwen

--
Karsten Iwen
Network- and Security Consultant/Trainer

CCIE #14602 (Security)
CCSI, CCSP, CCIP, CCNP, CCDA
MCSE: Security

http://www.iwen.de


---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------